-
Notifications
You must be signed in to change notification settings - Fork 0
/
index.html
129 lines (122 loc) · 4.92 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" href="/static/bootstrap.min.css">
<link rel="stylesheet" type="text/css" href="https://cdn.datatables.net/v/dt/dt-1.10.20/datatables.min.css" />
<title>VulnHunter</title>
</head>
<body>
<style>
/* Sticky footer styles
-------------------------------------------------- */
html {
position: relative;
min-height: 100%;
}
body {
/* Margin bottom by footer height */
margin-bottom: 60px;
}
.footer {
position: absolute;
bottom: 0;
width: 100%;
text-align: center;
/* Set the fixed height of the footer here */
height: 60px;
line-height: 60px; /* Vertically center the text there */
}
/* Custom page CSS
-------------------------------------------------- */
/* Not required for template or sticky footer method. */
body > .container {
padding: 60px 15px 0;
}
code {
font-size: 80%;
}
</style>
<header>
<!-- Fixed navbar -->
<nav class="navbar navbar-expand-md navbar-primary fixed-top">
<a class="navbar-brand" href="#">Vuln Hunter</a>
<button class="navbar-toggler" type="button" data-toggle="collapse" data-target="#navbarCollapse" aria-controls="navbarCollapse" aria-expanded="false" aria-label="Toggle navigation">
<span class="navbar-toggler-icon"></span>
</button>
<div class="collapse navbar-collapse" id="navbarCollapse">
<ul class="navbar-nav mr-auto">
<li class="nav-item active">
<a class="nav-link" href="#">Home <span class="sr-only">(current)</span></a>
</li>
<li class="nav-item">
<a class="nav-link" href="https://hireaazar.com" target="_blank">Contact</a>
</li>
</ul>
</div>
</nav>
</header>
<main role="main" class="container" id="main">
<img src="/static/ascii.png" class="img-fluid">
<p class="text-center text-primary">
A utility to scan a website for vulnerabilties, currently works fine for SQLi vulnerabilities and ClickJacking vulnerabilities. Written in pure GoLang.
</p>
<p class="text-center text-danger">
NOTE: It currently works best for small webapps / websites. Test <code>http://testphp.vulnweb.com/</code> for quick results demo. For bigger webapps it can take a lot of time, as it is hosted on heroku and also because it needs optimisation.
</p>
<form name="urlform" id="urlform" class="form-inline mb-4" action="" method="POST" onsubmit="event.preventDefault();populateData();">
<input class="form-control col-10" id="url" name="url" type="text" required type="url" pattern="https?://.+" placeholder="Enter a URL starting with http:// or https:// to scan ">
<button class="btn btn-outline-success col-2" type="submit">Scan</button>
</form>
<table id="myTable" class="text-primary mt-4"></table>
<div id="loadingLabel" style="display: none;"><img src="https://gifimage.net/wp-content/uploads/2017/06/loading-gif-14.gif" class="img-fluid" alt="" srcset=""></div>
<!-- <div class="spinner-grow" role="status">
<span class="sr-only">Loading...</span>
</div> -->
</main>
<footer class="footer text-primary">
<span>Made with ♡ by Aazar!</span>
</footer>
<script src="https://code.jquery.com/jquery-3.2.1.slim.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js"></script>
<script src="/static/bootstrap.min.js"></script>
<script type="text/javascript" src="https://cdn.datatables.net/v/dt/dt-1.10.20/datatables.min.js"></script>
<script>
const populateData = async() => {
$('#myTable').hide();
$('#loadingLabel').show();
let reqdata = {
url: document.getElementById("url").value
};
console.log(reqdata)
let response = await fetch('getdata', {
method: 'POST',
headers: {
'Content-Type': 'application/json;charset=utf-8'
},
body: JSON.stringify(reqdata)
});
let result = await response.json();
console.log(result)
$('#loadingLabel').hide();
$('#myTable').show();
$('#myTable').DataTable({
destroy: true,
searching: false,
data: result,
bLengthChange: false,
columns: [
{ data: 'url', title: 'URL' },
{ data: 'method', title: 'Method' },
{ data: 'sqlivulnerable', title: 'SQLi Vulnerable' },
{ data: 'vulnerableparams', title: 'Vulnerable Params' },
{ data: 'xssvulnerable', title: 'XSS Vulnerable' },
{ data: 'clickjackvulnerable', title: 'ClickJack Vulnerable' }
]
});
};
</script>
</body>
</html>